IT Auditor/ Risk Analyst, Enterprise Risk Management
March 28, 2018
Burnaby, British Columbia
Full Time - Experienced
CGEIT, CISA, CISM, COBIT Experience , CRISC
Canada, Dollar (CAD)
4 Year Degree/Bachelor Degree
We are seeking an IT auditor/risk analyst to join our Internal Audit (IA) team in Greater Vancouver. The successful candidate will be responsible for prioritising, planning, scoping and carrying out a number of IT Governance and IT Audit activities within a global investment management firm.
The successful candidate will be joining a team of value-driven IA professionals who have a two-fold focus: 1) providing assurance and transparency over IT risks and issues to board members, and 2) achieving business objectives by working with IT teams, both developers and infrastructure staff, in identifying opportunities to improve operations and enhance the firm’s security. Reporting to the Head of Internal Audit, the individual will also be expected to work closely with the IT Governance Group and the Risk team in the effective execution of the firm’s Enterprise Risk Management program. This position gives unparalleled opportunity to learn about the firm’s various operations. Limited travel is required.
Key Areas of Responsibility:
Contribute to IT Governance initiatives, provide business and IT management with guidance on IT risk management matters, educate management on emerging IT risks, changes to relevant governance legislation/ best practice, and partner with IT to implement appropriate governance structures.
Plan and deliver IT audit services. Knowledge of agile software development, website design, database security and/or cloud security best practices would be advantageous. Prepare and report results to the team leads, the IT Governance Group and the Global Risk Committee. These include:
Perform pre- and post-implementation reviews of system implementations or enhancements
IT security audits (e.g. network, operating system, data center, and applications), including evaluating if security vulnerabilities are properly identified and mitigated. Coordinate the scope and performance of these reviews with business units and the Information Security team.
Evaluate general computing controls and provide value added feedback. Test compliance with these controls.
Perform various other reviews of IT management policies and procedures such as change management, business continuity planning/ disaster recovery and information security to ensure that controls surrounding these processes are adequate.
Develop, build and implement tools to analyse data to improve audit efficiency and effectiveness. Ultimately be a source for analytics that business units adopt to provide business insights or for continuous auditing.
A minimum of three years ‘blue chip’ corporate experience, ideally working in a professional services/consulting environment. Strong Financial Services exposure will be advantageous.
Graduate in business and/or technology fields.
IT audit or risk management certification (CISA, CISSP, CISM, CRISC, CGEIT), IT Operations or Privacy certification (such as ITIL, CCNA, CIPP or CIPT) or similar professional qualifications will be an asset.
Relevant knowledge and experience in IT Governance, Information Security, Project Risk Management and IT Audit.
Typical attributes/competencies of individuals who will be well-suited to this role and our organization include the following:
Strong analytical, investigative and probing skills
Comfortable working in a pressured environment with steep learning curves
Excellent people skills and emotional intelligence
Ability to communicate and interact effectively with staff at all levels
Ability to persuade or inspire others to gain acceptance of good ideas
Outstanding report writing skills
Excellent presentation skills
Attention to detail
Passionate, proactive and driven
Ability to work without close supervision
Organised and deadline driven
Instructions for Application
In order to complete your application, please email your cover letter, resume and transcripts (all post-secondary to this point; unofficial are accepted) to firstname.lastname@example.org.
Additional Salary Information: We strive to attract talented individuals who have demonstrated the ability to excel in a challenging environment; the remuneration package will reflect this and will be heavily influenced by performance.
About Orbis Investments
Orbis is a global, privately owned investment firm, managing in excess of $30 billion of assets with offices across 5 continents and over 400 professionals. We have been creating long-term value for our clients since 1990. Our investment philosophy is fundamental, long-term and contrarian and we are uniquely structured to encourage bold but considered decisions, even in times of stress. As a firm, our business model requires us to deliver meaningful outperformance to our clients.
We believe that to generate better long-term returns than the market, you need to do things differently to others in it.